Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Need Help Removing Fynloski Trojan...


  • Please log in to reply
2 replies to this topic

#1 Deviathan

Deviathan

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:01:13 PM

Posted 30 May 2012 - 03:13 PM

Allowed "java" to run... Now I have a virus in my svchost.exe system file and cannot remove it by methods such as virus scan, command prompt, etc.

Thank you for considering my problem.

EDIT: The name of the virus is Fynloski

Edited by hamluis, 30 May 2012 - 04:00 PM.
Moved from Malware Removal Logs (no logs) to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:01:13 PM

Posted 30 May 2012 - 04:11 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 Deviathan

Deviathan
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:01:13 PM

Posted 30 May 2012 - 05:24 PM

I am currently using a 64 bit OS. Anyways, here are the logs from TDSSkiller:


18:20:12.0375 5828 TDSS rootkit removing tool 2.7.36.0 May 21 2012 16:40:16
18:20:12.0686 5828 ============================================================
18:20:12.0686 5828 Current date / time: 2012/05/30 18:20:12.0686
18:20:12.0686 5828 SystemInfo:
18:20:12.0686 5828
18:20:12.0686 5828 OS Version: 6.1.7601 ServicePack: 1.0
18:20:12.0686 5828 Product type: Workstation
18:20:12.0686 5828 ComputerName: JACK-PC
18:20:12.0686 5828 UserName: Jack
18:20:12.0686 5828 Windows directory: C:\Windows
18:20:12.0686 5828 System windows directory: C:\Windows
18:20:12.0686 5828 Running under WOW64
18:20:12.0686 5828 Processor architecture: Intel x64
18:20:12.0686 5828 Number of processors: 4
18:20:12.0686 5828 Page size: 0x1000
18:20:12.0686 5828 Boot type: Normal boot
18:20:12.0686 5828 ============================================================
18:20:13.0442 5828 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:20:13.0471 5828 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000048
18:20:13.0497 5828 ============================================================
18:20:13.0497 5828 \Device\Harddisk1\DR1:
18:20:13.0498 5828 MBR partitions:
18:20:13.0498 5828 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x71FF5800
18:20:13.0498 5828 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x71FF6000, BlocksNum 0x270F800
18:20:13.0498 5828 \Device\Harddisk0\DR0:
18:20:13.0498 5828 MBR partitions:
18:20:13.0498 5828 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
18:20:13.0498 5828 ============================================================
18:20:13.0653 5828 C: <-> \Device\Harddisk0\DR0\Partition0
18:20:13.0677 5828 F: <-> \Device\Harddisk1\DR1\Partition0
18:20:13.0710 5828 H: <-> \Device\Harddisk1\DR1\Partition1
18:20:13.0710 5828 ============================================================
18:20:13.0710 5828 Initialize success
18:20:13.0710 5828 ============================================================
18:21:06.0776 3288 ============================================================
18:21:06.0776 3288 Scan started
18:21:06.0776 3288 Mode: Manual; TDLFS;
18:21:06.0776 3288 ============================================================
18:21:07.0663 3288 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\DRIVERS\1394ohci.sys
18:21:07.0668 3288 1394ohci - ok
18:21:07.0711 3288 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
18:21:07.0718 3288 ACPI - ok
18:21:07.0772 3288 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
18:21:07.0802 3288 AcpiPmi - ok
18:21:07.0966 3288 AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:21:07.0967 3288 AdobeARMservice - ok
18:21:08.0125 3288 AdobeFlashPlayerUpdateSvc (76d5a3d2a50402a0b9b6ed13c4371e79) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
18:21:08.0127 3288 AdobeFlashPlayerUpdateSvc - ok
18:21:08.0173 3288 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
18:21:08.0203 3288 adp94xx - ok
18:21:08.0232 3288 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
18:21:08.0272 3288 adpahci - ok
18:21:08.0310 3288 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
18:21:08.0320 3288 adpu320 - ok
18:21:08.0345 3288 AeLookupSvc (4b78b431f225fd8624c5655cb1de7b61) C:\Windows\System32\aelupsvc.dll
18:21:08.0346 3288 AeLookupSvc - ok
18:21:08.0422 3288 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
18:21:08.0465 3288 AFD - ok
18:21:08.0503 3288 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
18:21:08.0516 3288 agp440 - ok
18:21:08.0758 3288 Akamai (c775d704feb2b600a5bf7b0b088546af) c:\program files (x86)\common files\akamai/netsession_win_80c2ffa.dll
18:21:08.0758 3288 Suspicious file (Hidden): c:\program files (x86)\common files\akamai/netsession_win_80c2ffa.dll. md5: c775d704feb2b600a5bf7b0b088546af
18:21:08.0763 3288 Akamai ( HiddenFile.Multi.Generic ) - warning
18:21:08.0763 3288 Akamai - detected HiddenFile.Multi.Generic (1)
18:21:08.0848 3288 ALG (3290d6946b5e30e70414990574883ddb) C:\Windows\System32\alg.exe
18:21:08.0852 3288 ALG - ok
18:21:08.0911 3288 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
18:21:08.0941 3288 aliide - ok
18:21:09.0001 3288 AMD External Events Utility (20c8a3e435a47f0408a1ea674afa6194) C:\Windows\system32\atiesrxx.exe
18:21:09.0003 3288 AMD External Events Utility - ok
18:21:09.0087 3288 AMD FUEL Service - ok
18:21:09.0110 3288 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
18:21:09.0128 3288 amdide - ok
18:21:09.0155 3288 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
18:21:09.0172 3288 amdiox64 - ok
18:21:09.0198 3288 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
18:21:09.0235 3288 AmdK8 - ok
18:21:09.0868 3288 amdkmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
18:21:10.0173 3288 amdkmdag - ok
18:21:10.0331 3288 amdkmdap (0e57258e5cc4cc7a9a9a877afdf0cec6) C:\Windows\system32\DRIVERS\atikmpag.sys
18:21:10.0346 3288 amdkmdap - ok
18:21:10.0383 3288 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
18:21:10.0400 3288 AmdPPM - ok
18:21:10.0426 3288 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
18:21:10.0478 3288 amdsata - ok
18:21:10.0516 3288 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
18:21:10.0541 3288 amdsbs - ok
18:21:10.0560 3288 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
18:21:10.0575 3288 amdxata - ok
18:21:10.0695 3288 AODDriver (b934322c68c30dceca96c0274a51f7b0) C:\Program Files (x86)\Gigabyte\ET6\amd64\AODDriver.sys
18:21:10.0696 3288 AODDriver - ok
18:21:10.0816 3288 AODDriver4.01 (5b25d1a753cc3a3edb909bb759ac1098) c:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:21:10.0825 3288 AODDriver4.01 - ok
18:21:10.0847 3288 AODDriver4.1 (5b25d1a753cc3a3edb909bb759ac1098) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
18:21:10.0848 3288 AODDriver4.1 - ok
18:21:10.0905 3288 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
18:21:10.0920 3288 AppID - ok
18:21:10.0941 3288 AppIDSvc (0bc381a15355a3982216f7172f545de1) C:\Windows\System32\appidsvc.dll
18:21:10.0943 3288 AppIDSvc - ok
18:21:10.0990 3288 Appinfo (3977d4a871ca0d4f2ed1e7db46829731) C:\Windows\System32\appinfo.dll
18:21:10.0992 3288 Appinfo - ok
18:21:11.0147 3288 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:21:11.0148 3288 Apple Mobile Device - ok
18:21:11.0205 3288 AppleCharger (6be11ad81d4527d299f0cb5f3731aabc) C:\Windows\system32\DRIVERS\AppleCharger.sys
18:21:11.0207 3288 AppleCharger - ok
18:21:11.0236 3288 AppleChargerSrv (95ef7247c50c7241fdae39a9b3aff4ae) C:\Windows\system32\AppleChargerSrv.exe
18:21:11.0238 3288 AppleChargerSrv - ok
18:21:11.0262 3288 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
18:21:11.0277 3288 arc - ok
18:21:11.0292 3288 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
18:21:11.0297 3288 arcsas - ok
18:21:11.0446 3288 aspnet_state (9217d874131ae6ff8f642f124f00a555) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
18:21:11.0447 3288 aspnet_state - ok
18:21:11.0456 3288 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
18:21:11.0467 3288 AsyncMac - ok
18:21:11.0513 3288 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
18:21:11.0513 3288 atapi - ok
18:21:11.0573 3288 AtiHDAudioService (24464b908e143d2561e9e452fee97309) C:\Windows\system32\drivers\AtihdW76.sys
18:21:11.0578 3288 AtiHDAudioService - ok
18:21:12.0140 3288 atikmdag (0b45c18b0f3ee996d25baa4e74884b83) C:\Windows\system32\DRIVERS\atikmdag.sys
18:21:12.0185 3288 atikmdag - ok
18:21:12.0368 3288 AudioEndpointBuilder (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:21:12.0383 3288 AudioEndpointBuilder - ok
18:21:12.0391 3288 AudioSrv (f23fef6d569fce88671949894a8becf1) C:\Windows\System32\Audiosrv.dll
18:21:12.0395 3288 AudioSrv - ok
18:21:12.0450 3288 AxInstSV (a6bf31a71b409dfa8cac83159e1e2aff) C:\Windows\System32\AxInstSV.dll
18:21:12.0462 3288 AxInstSV - ok
18:21:12.0535 3288 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
18:21:12.0548 3288 b06bdrv - ok
18:21:12.0575 3288 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
18:21:12.0597 3288 b57nd60a - ok
18:21:12.0623 3288 BDESVC (fde360167101b4e45a96f939f388aeb0) C:\Windows\System32\bdesvc.dll
18:21:12.0627 3288 BDESVC - ok
18:21:12.0647 3288 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
18:21:12.0648 3288 Beep - ok
18:21:12.0748 3288 BFE (82974d6a2fd19445cc5171fc378668a4) C:\Windows\System32\bfe.dll
18:21:12.0775 3288 BFE - ok
18:21:12.0887 3288 BITS (1ea7969e3271cbc59e1730697dc74682) C:\Windows\system32\qmgr.dll
18:21:12.0916 3288 BITS - ok
18:21:12.0965 3288 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
18:21:12.0992 3288 blbdrive - ok
18:21:13.0111 3288 Bonjour Service (ebbcd5dfbb1de70e8f4af8fa59e401fd) C:\Program Files\Bonjour\mDNSResponder.exe
18:21:13.0133 3288 Bonjour Service - ok
18:21:13.0188 3288 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
18:21:13.0242 3288 bowser - ok
18:21:13.0261 3288 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
18:21:13.0262 3288 BrFiltLo - ok
18:21:13.0272 3288 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
18:21:13.0273 3288 BrFiltUp - ok
18:21:13.0332 3288 Browser (8ef0d5c41ec907751b8429162b1239ed) C:\Windows\System32\browser.dll
18:21:13.0343 3288 Browser - ok
18:21:13.0377 3288 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
18:21:13.0417 3288 Brserid - ok
18:21:13.0422 3288 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
18:21:13.0438 3288 BrSerWdm - ok
18:21:13.0453 3288 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
18:21:13.0470 3288 BrUsbMdm - ok
18:21:13.0473 3288 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
18:21:13.0475 3288 BrUsbSer - ok
18:21:13.0487 3288 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
18:21:13.0505 3288 BTHMODEM - ok
18:21:13.0532 3288 bthserv (95f9c2976059462cbbf227f7aab10de9) C:\Windows\system32\bthserv.dll
18:21:13.0538 3288 bthserv - ok
18:21:13.0555 3288 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
18:21:13.0561 3288 cdfs - ok
18:21:13.0623 3288 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
18:21:13.0673 3288 cdrom - ok
18:21:13.0725 3288 CertPropSvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:21:13.0725 3288 CertPropSvc - ok
18:21:13.0740 3288 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
18:21:13.0742 3288 circlass - ok
18:21:13.0772 3288 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
18:21:13.0805 3288 CLFS - ok
18:21:13.0863 3288 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:21:13.0871 3288 clr_optimization_v2.0.50727_32 - ok
18:21:13.0925 3288 clr_optimization_v2.0.50727_64 (d1ceea2b47cb998321c579651ce3e4f8) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:21:13.0931 3288 clr_optimization_v2.0.50727_64 - ok
18:21:14.0048 3288 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:21:14.0050 3288 clr_optimization_v4.0.30319_32 - ok
18:21:14.0093 3288 clr_optimization_v4.0.30319_64 (c6f9af94dcd58122a4d7e89db6bed29d) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:21:14.0098 3288 clr_optimization_v4.0.30319_64 - ok
18:21:14.0148 3288 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
18:21:14.0178 3288 CmBatt - ok
18:21:14.0210 3288 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
18:21:14.0245 3288 cmdide - ok
18:21:14.0363 3288 cmudaxp (34ce53b769dfe81fd281a1e2a4e03f73) C:\Windows\system32\drivers\cmudaxp.sys
18:21:14.0409 3288 cmudaxp - ok
18:21:14.0489 3288 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
18:21:14.0527 3288 CNG - ok
18:21:14.0532 3288 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
18:21:14.0548 3288 Compbatt - ok
18:21:14.0597 3288 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
18:21:14.0598 3288 CompositeBus - ok
18:21:14.0600 3288 COMSysApp - ok
18:21:14.0688 3288 cpuz130 - ok
18:21:14.0700 3288 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
18:21:14.0705 3288 crcdisk - ok
18:21:14.0774 3288 CryptSvc (15597883fbe9b056f276ada3ad87d9af) C:\Windows\system32\cryptsvc.dll
18:21:14.0784 3288 CryptSvc - ok
18:21:14.0813 3288 danewFltr (003626f7ca17c204f16cd5047af0703a) C:\Windows\system32\drivers\danew.sys
18:21:14.0815 3288 danewFltr - ok
18:21:14.0893 3288 DcomLaunch (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\system32\rpcss.dll
18:21:14.0918 3288 DcomLaunch - ok
18:21:14.0964 3288 defragsvc (3cec7631a84943677aa8fa8ee5b6b43d) C:\Windows\System32\defragsvc.dll
18:21:14.0972 3288 defragsvc - ok
18:21:15.0032 3288 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
18:21:15.0034 3288 DfsC - ok
18:21:15.0102 3288 Dhcp (43d808f5d9e1a18e5eeb5ebc83969e4e) C:\Windows\system32\dhcpcore.dll
18:21:15.0116 3288 Dhcp - ok
18:21:15.0137 3288 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
18:21:15.0191 3288 discache - ok
18:21:15.0204 3288 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
18:21:15.0216 3288 Disk - ok
18:21:15.0264 3288 Dnscache (16835866aaa693c7d7fceba8fff706e4) C:\Windows\System32\dnsrslvr.dll
18:21:15.0276 3288 Dnscache - ok
18:21:15.0336 3288 dot3svc (b1fb3ddca0fdf408750d5843591afbc6) C:\Windows\System32\dot3svc.dll
18:21:15.0352 3288 dot3svc - ok
18:21:15.0413 3288 DPS (b26f4f737e8f9df4f31af6cf31d05820) C:\Windows\system32\dps.dll
18:21:15.0418 3288 DPS - ok
18:21:15.0448 3288 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
18:21:15.0479 3288 drmkaud - ok
18:21:15.0689 3288 dump_wmimmc - ok
18:21:15.0823 3288 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
18:21:15.0861 3288 DXGKrnl - ok
18:21:15.0903 3288 EagleX64 - ok
18:21:15.0993 3288 eamonm (aca3fe4f18a945b7bf2618a79f6f670b) C:\Windows\system32\DRIVERS\eamonm.sys
18:21:16.0026 3288 eamonm - ok
18:21:16.0056 3288 EapHost (e2dda8726da9cb5b2c4000c9018a9633) C:\Windows\System32\eapsvc.dll
18:21:16.0061 3288 EapHost - ok
18:21:16.0287 3288 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
18:21:16.0382 3288 ebdrv - ok
18:21:16.0497 3288 EFS (c118a82cd78818c29ab228366ebf81c3) C:\Windows\System32\lsass.exe
18:21:16.0501 3288 EFS - ok
18:21:16.0574 3288 ehdrv (6672438bdcbfd87250d22112d458294d) C:\Windows\system32\DRIVERS\ehdrv.sys
18:21:16.0633 3288 ehdrv - ok
18:21:16.0747 3288 ehRecvr (c4002b6b41975f057d98c439030cea07) C:\Windows\ehome\ehRecvr.exe
18:21:16.0773 3288 ehRecvr - ok
18:21:16.0806 3288 ehSched (4705e8ef9934482c5bb488ce28afc681) C:\Windows\ehome\ehsched.exe
18:21:16.0817 3288 ehSched - ok
18:21:16.0954 3288 EhttpSrv (deb2b067745d92ff17a5068dfd2360bc) C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
18:21:16.0957 3288 EhttpSrv - ok
18:21:17.0104 3288 ekrn (191d8eccc40f05b52fac0513f35ba01d) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
18:21:17.0122 3288 ekrn - ok
18:21:17.0232 3288 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
18:21:17.0263 3288 elxstor - ok
18:21:17.0317 3288 epfwwfpr (954fade8e59f159b0a71d0cfcc99a76e) C:\Windows\system32\DRIVERS\epfwwfpr.sys
18:21:17.0367 3288 epfwwfpr - ok
18:21:17.0409 3288 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
18:21:17.0426 3288 ErrDev - ok
18:21:17.0488 3288 ES lite Service (2c31dcaa88d269e13a935910dbb4cc61) C:\Program Files (x86)\Gigabyte\EasySaver\ESSVR.EXE
18:21:17.0491 3288 ES lite Service - ok
18:21:17.0527 3288 etdrv (84486624268e078255bc7aa47f0960bc) C:\Windows\etdrv.sys
18:21:17.0571 3288 etdrv - ok
18:21:17.0638 3288 EuMusDesignVirtualAudioCableWdm (932c05033053ada2404fd836c9ab2c70) C:\Windows\system32\DRIVERS\vrtaucbl.sys
18:21:17.0672 3288 EuMusDesignVirtualAudioCableWdm - ok
18:21:17.0719 3288 EventSystem (4166f82be4d24938977dd1746be9b8a0) C:\Windows\system32\es.dll
18:21:17.0734 3288 EventSystem - ok
18:21:17.0772 3288 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
18:21:17.0832 3288 exfat - ok
18:21:17.0856 3288 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
18:21:17.0902 3288 fastfat - ok
18:21:17.0988 3288 Fax (dbefd454f8318a0ef691fdd2eaab44eb) C:\Windows\system32\fxssvc.exe
18:21:18.0018 3288 Fax - ok
18:21:18.0040 3288 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
18:21:18.0099 3288 fdc - ok
18:21:18.0127 3288 fdPHost (0438cab2e03f4fb61455a7956026fe86) C:\Windows\system32\fdPHost.dll
18:21:18.0128 3288 fdPHost - ok
18:21:18.0144 3288 FDResPub (802496cb59a30349f9a6dd22d6947644) C:\Windows\system32\fdrespub.dll
18:21:18.0147 3288 FDResPub - ok
18:21:18.0165 3288 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
18:21:18.0182 3288 FileInfo - ok
18:21:18.0203 3288 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
18:21:18.0222 3288 Filetrace - ok
18:21:18.0263 3288 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
18:21:18.0265 3288 flpydisk - ok
18:21:18.0334 3288 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
18:21:18.0340 3288 FltMgr - ok
18:21:18.0469 3288 FontCache (5c4cb4086fb83115b153e47add961a0c) C:\Windows\system32\FntCache.dll
18:21:18.0493 3288 FontCache - ok
18:21:18.0584 3288 FontCache3.0.0.0 (a8b7f3818ab65695e3a0bb3279f6dce6) C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:21:18.0589 3288 FontCache3.0.0.0 - ok
18:21:18.0632 3288 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
18:21:18.0664 3288 FsDepends - ok
18:21:18.0707 3288 Fs_Rec (6bd9295cc032dd3077c671fccf579a7b) C:\Windows\system32\drivers\Fs_Rec.sys
18:21:18.0724 3288 Fs_Rec - ok
18:21:18.0782 3288 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
18:21:18.0829 3288 fvevol - ok
18:21:18.0848 3288 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
18:21:18.0879 3288 gagp30kx - ok
18:21:18.0925 3288 gdrv (7907e14f9bcf3a4689c9a74a1a873cb6) C:\Windows\gdrv.sys
18:21:18.0960 3288 gdrv - ok
18:21:19.0030 3288 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:21:19.0034 3288 GEARAspiWDM - ok
18:21:19.0142 3288 gpsvc (277bbc7e1aa1ee957f573a10eca7ef3a) C:\Windows\System32\gpsvc.dll
18:21:19.0164 3288 gpsvc - ok
18:21:19.0263 3288 gupdate (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:21:19.0275 3288 gupdate - ok
18:21:19.0299 3288 gupdatem (506708142bc63daba64f2d3ad1dcd5bf) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:21:19.0302 3288 gupdatem - ok
18:21:19.0328 3288 GVTDrv64 (8126331fbd4ed29eb3b356f9c905064d) C:\Windows\GVTDrv64.sys
18:21:19.0344 3288 GVTDrv64 - ok
18:21:19.0370 3288 hamachi (1e6438d4ea6e1174a3b3b1edc4de660b) C:\Windows\system32\DRIVERS\hamachi.sys
18:21:19.0400 3288 hamachi - ok
18:21:19.0424 3288 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
18:21:19.0425 3288 hcw85cir - ok
18:21:19.0489 3288 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
18:21:19.0504 3288 HdAudAddService - ok
18:21:19.0535 3288 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:21:19.0540 3288 HDAudBus - ok
18:21:19.0559 3288 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
18:21:19.0627 3288 HidBatt - ok
18:21:19.0643 3288 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
18:21:19.0657 3288 HidBth - ok
18:21:19.0662 3288 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
18:21:19.0682 3288 HidIr - ok
18:21:19.0705 3288 hidserv (bd9eb3958f213f96b97b1d897dee006d) C:\Windows\System32\hidserv.dll
18:21:19.0707 3288 hidserv - ok
18:21:19.0718 3288 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
18:21:19.0729 3288 HidUsb - ok
18:21:19.0784 3288 hkmsvc (387e72e739e15e3d37907a86d9ff98e2) C:\Windows\system32\kmsvc.dll
18:21:19.0797 3288 hkmsvc - ok
18:21:19.0867 3288 HomeGroupListener (efdfb3dd38a4376f93e7985173813abd) C:\Windows\system32\ListSvc.dll
18:21:19.0870 3288 HomeGroupListener - ok
18:21:19.0933 3288 HomeGroupProvider (908acb1f594274965a53926b10c81e89) C:\Windows\system32\provsvc.dll
18:21:19.0940 3288 HomeGroupProvider - ok
18:21:19.0968 3288 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
18:21:19.0974 3288 HpSAMD - ok
18:21:20.0068 3288 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
18:21:20.0092 3288 HTTP - ok
18:21:20.0139 3288 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
18:21:20.0140 3288 hwpolicy - ok
18:21:20.0208 3288 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
18:21:20.0252 3288 i8042prt - ok
18:21:20.0293 3288 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
18:21:20.0319 3288 iaStorV - ok
18:21:20.0388 3288 IDMWFP (71359fc89451bf54fa06f049d3a87adf) C:\Windows\system32\DRIVERS\idmwfp.sys
18:21:20.0430 3288 IDMWFP - ok
18:21:20.0524 3288 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
18:21:20.0533 3288 IDriverT - ok
18:21:20.0669 3288 idsvc (5988fc40f8db5b0739cd1e3a5d0d78bd) C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:21:20.0698 3288 idsvc - ok
18:21:20.0723 3288 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
18:21:20.0727 3288 iirsp - ok
18:21:20.0833 3288 IKEEXT (fcd84c381e0140af901e58d48882d26b) C:\Windows\System32\ikeext.dll
18:21:20.0868 3288 IKEEXT - ok
18:21:20.0882 3288 IntcAzAudAddService - ok
18:21:20.0938 3288 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
18:21:20.0942 3288 intelide - ok
18:21:20.0978 3288 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
18:21:21.0022 3288 intelppm - ok
18:21:21.0064 3288 IPBusEnum (098a91c54546a3b878dad6a7e90a455b) C:\Windows\system32\ipbusenum.dll
18:21:21.0068 3288 IPBusEnum - ok
18:21:21.0124 3288 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:21:21.0139 3288 IpFilterDriver - ok
18:21:21.0224 3288 iphlpsvc (a34a587fffd45fa649fba6d03784d257) C:\Windows\System32\iphlpsvc.dll
18:21:21.0245 3288 iphlpsvc - ok
18:21:21.0302 3288 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
18:21:21.0308 3288 IPMIDRV - ok
18:21:21.0345 3288 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
18:21:21.0392 3288 IPNAT - ok
18:21:21.0543 3288 iPod Service (50d6ccc6ff5561f9f56946b3e6164fb8) C:\Program Files\iPod\bin\iPodService.exe
18:21:21.0557 3288 iPod Service - ok
18:21:21.0579 3288 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
18:21:21.0582 3288 IRENUM - ok
18:21:21.0628 3288 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
18:21:21.0660 3288 isapnp - ok
18:21:21.0724 3288 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
18:21:21.0759 3288 iScsiPrt - ok
18:21:21.0889 3288 JMB36X (f3a41ec4c6506e76e07a219b3a1df8d2) C:\Windows\SysWOW64\XSrvSetup.exe
18:21:21.0899 3288 JMB36X - ok
18:21:21.0973 3288 JRAID (1c368c1a2733dcc5b8e15420aa2b0f6d) C:\Windows\system32\DRIVERS\jraid.sys
18:21:21.0975 3288 JRAID - ok
18:21:22.0002 3288 K@BJ,QB - ok
18:21:22.0062 3288 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
18:21:22.0070 3288 kbdclass - ok
18:21:22.0122 3288 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
18:21:22.0125 3288 kbdhid - ok
18:21:22.0133 3288 KcBJcQB - ok
18:21:22.0188 3288 KeyIso (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:21:22.0192 3288 KeyIso - ok
18:21:22.0210 3288 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
18:21:22.0217 3288 KSecDD - ok
18:21:22.0235 3288 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
18:21:22.0253 3288 KSecPkg - ok
18:21:22.0273 3288 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
18:21:22.0289 3288 ksthunk - ok
18:21:22.0328 3288 KtmRm (6ab66e16aa859232f64deb66887a8c9c) C:\Windows\system32\msdtckrm.dll
18:21:22.0340 3288 KtmRm - ok
18:21:22.0407 3288 LanmanServer (d9f42719019740baa6d1c6d536cbdaa6) C:\Windows\System32\srvsvc.dll
18:21:22.0417 3288 LanmanServer - ok
18:21:22.0482 3288 LanmanWorkstation (851a1382eed3e3a7476db004f4ee3e1a) C:\Windows\System32\wkssvc.dll
18:21:22.0490 3288 LanmanWorkstation - ok
18:21:22.0517 3288 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
18:21:22.0559 3288 lltdio - ok
18:21:22.0600 3288 lltdsvc (c1185803384ab3feed115f79f109427f) C:\Windows\System32\lltdsvc.dll
18:21:22.0617 3288 lltdsvc - ok
18:21:22.0639 3288 lmhosts (f993a32249b66c9d622ea5592a8b76b8) C:\Windows\System32\lmhsvc.dll
18:21:22.0643 3288 lmhosts - ok
18:21:22.0677 3288 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
18:21:22.0714 3288 LSI_FC - ok
18:21:22.0732 3288 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
18:21:22.0750 3288 LSI_SAS - ok
18:21:22.0768 3288 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
18:21:22.0785 3288 LSI_SAS2 - ok
18:21:22.0803 3288 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
18:21:22.0830 3288 LSI_SCSI - ok
18:21:22.0854 3288 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
18:21:22.0855 3288 luafv - ok
18:21:22.0924 3288 ManyCam (d33e2b74cf8b3a652bf0a9fbd068e87a) C:\Windows\system32\DRIVERS\ManyCam_x64.sys
18:21:22.0953 3288 ManyCam - ok
18:21:23.0014 3288 MBAMProtector (dbc08862a71459e74f7538b432c114cc) C:\Windows\system32\drivers\mbam.sys
18:21:23.0015 3288 MBAMProtector - ok
18:21:23.0169 3288 MBAMService (ba400ed640bca1eae5c727ae17c10207) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:21:23.0179 3288 MBAMService - ok
18:21:23.0233 3288 Mcx2Svc (0be09cd858abf9df6ed259d57a1a1663) C:\Windows\system32\Mcx2Svc.dll
18:21:23.0247 3288 Mcx2Svc - ok
18:21:23.0278 3288 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
18:21:23.0347 3288 megasas - ok
18:21:23.0370 3288 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
18:21:23.0395 3288 MegaSR - ok
18:21:23.0473 3288 Microsoft SharePoint Workspace Audit Service - ok
18:21:23.0508 3288 MMCSS (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:21:23.0512 3288 MMCSS - ok
18:21:23.0537 3288 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
18:21:23.0540 3288 Modem - ok
18:21:23.0595 3288 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
18:21:23.0597 3288 monitor - ok
18:21:23.0648 3288 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
18:21:23.0653 3288 mouclass - ok
18:21:23.0672 3288 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
18:21:23.0675 3288 mouhid - ok
18:21:23.0729 3288 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
18:21:23.0732 3288 mountmgr - ok
18:21:23.0790 3288 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
18:21:23.0804 3288 mpio - ok
18:21:23.0824 3288 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
18:21:23.0840 3288 mpsdrv - ok
18:21:23.0949 3288 MpsSvc (54ffc9c8898113ace189d4aa7199d2c1) C:\Windows\system32\mpssvc.dll
18:21:23.0978 3288 MpsSvc - ok
18:21:24.0079 3288 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
18:21:24.0085 3288 MRxDAV - ok
18:21:24.0150 3288 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:21:24.0155 3288 mrxsmb - ok
18:21:24.0232 3288 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:21:24.0284 3288 mrxsmb10 - ok
18:21:24.0303 3288 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:21:24.0314 3288 mrxsmb20 - ok
18:21:24.0362 3288 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
18:21:24.0392 3288 msahci - ok
18:21:24.0445 3288 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
18:21:24.0483 3288 msdsm - ok
18:21:24.0522 3288 MSDTC (de0ece52236cfa3ed2dbfc03f28253a8) C:\Windows\System32\msdtc.exe
18:21:24.0533 3288 MSDTC - ok
18:21:24.0584 3288 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
18:21:24.0585 3288 Msfs - ok
18:21:24.0602 3288 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
18:21:24.0603 3288 mshidkmdf - ok
18:21:24.0652 3288 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
18:21:24.0653 3288 msisadrv - ok
18:21:24.0695 3288 MSiSCSI (808e98ff49b155c522e6400953177b08) C:\Windows\system32\iscsiexe.dll
18:21:24.0708 3288 MSiSCSI - ok
18:21:24.0718 3288 msiserver - ok
18:21:24.0744 3288 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
18:21:24.0747 3288 MSKSSRV - ok
18:21:24.0757 3288 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
18:21:24.0758 3288 MSPCLOCK - ok
18:21:24.0772 3288 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
18:21:24.0787 3288 MSPQM - ok
18:21:24.0857 3288 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
18:21:24.0868 3288 MsRPC - ok
18:21:24.0895 3288 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
18:21:24.0897 3288 mssmbios - ok
18:21:24.0913 3288 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
18:21:24.0914 3288 MSTEE - ok
18:21:24.0929 3288 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
18:21:24.0930 3288 MTConfig - ok
18:21:24.0944 3288 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
18:21:24.0945 3288 Mup - ok
18:21:25.0025 3288 napagent (582ac6d9873e31dfa28a4547270862dd) C:\Windows\system32\qagentRT.dll
18:21:25.0039 3288 napagent - ok
18:21:25.0075 3288 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
18:21:25.0115 3288 NativeWifiP - ok
18:21:25.0197 3288 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
18:21:25.0245 3288 NDIS - ok
18:21:25.0259 3288 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
18:21:25.0277 3288 NdisCap - ok
18:21:25.0289 3288 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
18:21:25.0292 3288 NdisTapi - ok
18:21:25.0334 3288 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
18:21:25.0337 3288 Ndisuio - ok
18:21:25.0388 3288 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
18:21:25.0437 3288 NdisWan - ok
18:21:25.0485 3288 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
18:21:25.0542 3288 NDProxy - ok
18:21:25.0568 3288 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
18:21:25.0568 3288 NetBIOS - ok
18:21:25.0635 3288 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
18:21:25.0640 3288 NetBT - ok
18:21:25.0697 3288 Netlogon (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:21:25.0699 3288 Netlogon - ok
18:21:25.0749 3288 Netman (847d3ae376c0817161a14a82c8922a9e) C:\Windows\System32\netman.dll
18:21:25.0760 3288 Netman - ok
18:21:25.0897 3288 NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:21:25.0899 3288 NetMsmqActivator - ok
18:21:25.0909 3288 NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:21:25.0912 3288 NetPipeActivator - ok
18:21:25.0963 3288 netprofm (5f28111c648f1e24f7dbc87cdeb091b8) C:\Windows\System32\netprofm.dll
18:21:25.0978 3288 netprofm - ok
18:21:25.0989 3288 NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:21:25.0993 3288 NetTcpActivator - ok
18:21:26.0003 3288 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:21:26.0005 3288 NetTcpPortSharing - ok
18:21:26.0037 3288 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
18:21:26.0067 3288 nfrd960 - ok
18:21:26.0129 3288 NlaSvc (1ee99a89cc788ada662441d1e9830529) C:\Windows\System32\nlasvc.dll
18:21:26.0144 3288 NlaSvc - ok
18:21:26.0159 3288 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
18:21:26.0175 3288 Npfs - ok
18:21:26.0179 3288 npggsvc - ok
18:21:26.0185 3288 NPPTNT2 - ok
18:21:26.0193 3288 nsi (d54bfdf3e0c953f823b3d0bfe4732528) C:\Windows\system32\nsisvc.dll
18:21:26.0195 3288 nsi - ok
18:21:26.0208 3288 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
18:21:26.0208 3288 nsiproxy - ok
18:21:26.0362 3288 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
18:21:26.0393 3288 Ntfs - ok
18:21:26.0499 3288 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
18:21:26.0525 3288 Null - ok
18:21:26.0572 3288 nusb3hub (785298579b5f9b4032152dfbb992fdb6) C:\Windows\system32\DRIVERS\nusb3hub.sys
18:21:26.0603 3288 nusb3hub - ok
18:21:26.0655 3288 nusb3xhc (df2750481b4964814467c974f2b0eef1) C:\Windows\system32\DRIVERS\nusb3xhc.sys
18:21:26.0667 3288 nusb3xhc - ok
18:21:26.0709 3288 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
18:21:26.0757 3288 nvraid - ok
18:21:26.0792 3288 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
18:21:26.0833 3288 nvstor - ok
18:21:26.0887 3288 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
18:21:26.0932 3288 nv_agp - ok
18:21:26.0991 3288 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
18:21:27.0029 3288 ohci1394 - ok
18:21:27.0129 3288 ose (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
18:21:27.0131 3288 ose - ok
18:21:27.0515 3288 osppsvc (61bffb5f57ad12f83ab64b7181829b34) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
18:21:27.0543 3288 osppsvc - ok
18:21:27.0659 3288 p2pimsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:21:27.0671 3288 p2pimsvc - ok
18:21:27.0708 3288 p2psvc (927463ecb02179f88e4b9a17568c63c3) C:\Windows\system32\p2psvc.dll
18:21:27.0715 3288 p2psvc - ok
18:21:27.0765 3288 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
18:21:27.0810 3288 Parport - ok
18:21:27.0861 3288 partmgr (e9766131eeade40a27dc27d2d68fba9c) C:\Windows\system32\drivers\partmgr.sys
18:21:27.0863 3288 partmgr - ok
18:21:27.0901 3288 PcaSvc (3aeaa8b561e63452c655dc0584922257) C:\Windows\System32\pcasvc.dll
18:21:27.0909 3288 PcaSvc - ok
18:21:27.0973 3288 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
18:21:28.0031 3288 pci - ok
18:21:28.0040 3288 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
18:21:28.0041 3288 pciide - ok
18:21:28.0064 3288 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
18:21:28.0083 3288 pcmcia - ok
18:21:28.0096 3288 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
18:21:28.0098 3288 pcw - ok
18:21:28.0151 3288 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
18:21:28.0203 3288 PEAUTH - ok
18:21:28.0276 3288 PerfHost (e495e408c93141e8fc72dc0c6046ddfa) C:\Windows\SysWow64\perfhost.exe
18:21:28.0289 3288 PerfHost - ok
18:21:28.0508 3288 pla (c7cf6a6e137463219e1259e3f0f0dd6c) C:\Windows\system32\pla.dll
18:21:28.0553 3288 pla - ok
18:21:28.0634 3288 PlugPlay (25fbdef06c4d92815b353f6e792c8129) C:\Windows\system32\umpnpmgr.dll
18:21:28.0651 3288 PlugPlay - ok
18:21:28.0713 3288 Pml Driver HPZ12 (f485770eec8959684cc4c4786b63c06c) C:\Windows\system32\HPZipm12.dll
18:21:28.0716 3288 Pml Driver HPZ12 - ok
18:21:28.0758 3288 PnkBstrA - ok
18:21:28.0791 3288 PNRPAutoReg (7195581cec9bb7d12abe54036acc2e38) C:\Windows\system32\pnrpauto.dll
18:21:28.0799 3288 PNRPAutoReg - ok
18:21:28.0839 3288 PNRPsvc (3eac4455472cc2c97107b5291e0dcafe) C:\Windows\system32\pnrpsvc.dll
18:21:28.0841 3288 PNRPsvc - ok
18:21:28.0914 3288 PolicyAgent (4f15d75adf6156bf56eced6d4a55c389) C:\Windows\System32\ipsecsvc.dll
18:21:28.0936 3288 PolicyAgent - ok
18:21:28.0978 3288 Power (6ba9d927dded70bd1a9caded45f8b184) C:\Windows\system32\umpo.dll
18:21:28.0986 3288 Power - ok
18:21:29.0064 3288 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
18:21:29.0130 3288 PptpMiniport - ok
18:21:29.0154 3288 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
18:21:29.0189 3288 Processor - ok
18:21:29.0254 3288 ProfSvc (5c78838b4d166d1a27db3a8a820c799a) C:\Windows\system32\profsvc.dll
18:21:29.0271 3288 ProfSvc - ok
18:21:29.0330 3288 ProtectedStorage (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:21:29.0333 3288 ProtectedStorage - ok
18:21:29.0391 3288 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
18:21:29.0395 3288 Psched - ok
18:21:29.0449 3288 PxHlpa64 (87b04878a6d59d6c79251dc960c674c1) C:\Windows\system32\Drivers\PxHlpa64.sys
18:21:29.0488 3288 PxHlpa64 - ok
18:21:29.0599 3288 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
18:21:29.0635 3288 ql2300 - ok
18:21:29.0764 3288 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
18:21:29.0778 3288 ql40xx - ok
18:21:29.0825 3288 QWAVE (906191634e99aea92c4816150bda3732) C:\Windows\system32\qwave.dll
18:21:29.0833 3288 QWAVE - ok
18:21:29.0849 3288 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
18:21:29.0865 3288 QWAVEdrv - ok
18:21:29.0904 3288 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
18:21:29.0939 3288 RasAcd - ok
18:21:29.0964 3288 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
18:21:29.0966 3288 RasAgileVpn - ok
18:21:29.0984 3288 RasAuto (8f26510c5383b8dbe976de1cd00fc8c7) C:\Windows\System32\rasauto.dll
18:21:29.0989 3288 RasAuto - ok
18:21:30.0045 3288 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:21:30.0104 3288 Rasl2tp - ok
18:21:30.0174 3288 RasMan (ee867a0870fc9e4972ba9eaad35651e2) C:\Windows\System32\rasmans.dll
18:21:30.0195 3288 RasMan - ok
18:21:30.0229 3288 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
18:21:30.0243 3288 RasPppoe - ok
18:21:30.0271 3288 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
18:21:30.0319 3288 RasSstp - ok
18:21:30.0390 3288 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
18:21:30.0400 3288 rdbss - ok
18:21:30.0426 3288 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
18:21:30.0458 3288 rdpbus - ok
18:21:30.0509 3288 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:21:30.0511 3288 RDPCDD - ok
18:21:30.0533 3288 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
18:21:30.0535 3288 RDPENCDD - ok
18:21:30.0543 3288 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
18:21:30.0544 3288 RDPREFMP - ok
18:21:30.0604 3288 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
18:21:30.0653 3288 RDPWD - ok
18:21:30.0715 3288 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
18:21:30.0720 3288 rdyboost - ok
18:21:30.0765 3288 RemoteAccess (254fb7a22d74e5511c73a3f6d802f192) C:\Windows\System32\mprdim.dll
18:21:30.0778 3288 RemoteAccess - ok
18:21:30.0816 3288 RemoteRegistry (e4d94f24081440b5fc5aa556c7c62702) C:\Windows\system32\regsvc.dll
18:21:30.0828 3288 RemoteRegistry - ok
18:21:30.0853 3288 RpcEptMapper (e4dc58cf7b3ea515ae917ff0d402a7bb) C:\Windows\System32\RpcEpMap.dll
18:21:30.0859 3288 RpcEptMapper - ok
18:21:30.0885 3288 RpcLocator (d5ba242d4cf8e384db90e6a8ed850b8c) C:\Windows\system32\locator.exe
18:21:30.0890 3288 RpcLocator - ok
18:21:30.0976 3288 RpcSs (5c627d1b1138676c0a7ab2c2c190d123) C:\Windows\System32\rpcss.dll
18:21:30.0988 3288 RpcSs - ok
18:21:31.0021 3288 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
18:21:31.0053 3288 rspndr - ok
18:21:31.0090 3288 RTHDMIAzAudService (483c537e69fa97c77f7fe0e2e1c1f102) C:\Windows\system32\drivers\RtHDMIVX.sys
18:21:31.0115 3288 RTHDMIAzAudService - ok
18:21:31.0186 3288 RTL8167 (6d3c7e7d82d3dc92dc2a8b0df9f20f8a) C:\Windows\system32\DRIVERS\Rt64win7.sys
18:21:31.0235 3288 RTL8167 - ok
18:21:31.0305 3288 RzSynapse (f71eea505290b0aad48850f0d750702d) C:\Windows\system32\DRIVERS\RzSynapse.sys
18:21:31.0349 3288 RzSynapse - ok
18:21:31.0397 3288 SamSs (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:21:31.0398 3288 SamSs - ok
18:21:31.0444 3288 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
18:21:31.0495 3288 sbp2port - ok
18:21:31.0528 3288 SCardSvr (9b7395789e3791a3b6d000fe6f8b131e) C:\Windows\System32\SCardSvr.dll
18:21:31.0538 3288 SCardSvr - ok
18:21:31.0585 3288 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
18:21:31.0614 3288 scfilter - ok
18:21:31.0732 3288 Schedule (262f6592c3299c005fd6bec90fc4463a) C:\Windows\system32\schedsvc.dll
18:21:31.0757 3288 Schedule - ok
18:21:31.0808 3288 SCPolicySvc (f17d1d393bbc69c5322fbfafaca28c7f) C:\Windows\System32\certprop.dll
18:21:31.0810 3288 SCPolicySvc - ok
18:21:31.0850 3288 ScreamBAudioSvc (8b56bdce6a303dde63d63440d1cf9ad1) C:\Windows\system32\drivers\ScreamingBAudio64.sys
18:21:31.0855 3288 ScreamBAudioSvc - ok
18:21:31.0935 3288 SDRSVC (6ea4234dc55346e0709560fe7c2c1972) C:\Windows\System32\SDRSVC.dll
18:21:31.0943 3288 SDRSVC - ok
18:21:31.0973 3288 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
18:21:32.0014 3288 secdrv - ok
18:21:32.0083 3288 seclogon (bc617a4e1b4fa8df523a061739a0bd87) C:\Windows\system32\seclogon.dll
18:21:32.0090 3288 seclogon - ok
18:21:32.0122 3288 SENS (c32ab8fa018ef34c0f113bd501436d21) C:\Windows\system32\sens.dll
18:21:32.0128 3288 SENS - ok
18:21:32.0143 3288 SensrSvc (0336cffafaab87a11541f1cf1594b2b2) C:\Windows\system32\sensrsvc.dll
18:21:32.0145 3288 SensrSvc - ok
18:21:32.0162 3288 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
18:21:32.0178 3288 Serenum - ok
18:21:32.0199 3288 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
18:21:32.0255 3288 Serial - ok
18:21:32.0300 3288 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
18:21:32.0312 3288 sermouse - ok
18:21:32.0375 3288 SessionEnv (0b6231bf38174a1628c4ac812cc75804) C:\Windows\system32\sessenv.dll
18:21:32.0378 3288 SessionEnv - ok
18:21:32.0427 3288 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
18:21:32.0437 3288 sffdisk - ok
18:21:32.0448 3288 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
18:21:32.0458 3288 sffp_mmc - ok
18:21:32.0472 3288 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
18:21:32.0473 3288 sffp_sd - ok
18:21:32.0488 3288 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
18:21:32.0499 3288 sfloppy - ok
18:21:32.0542 3288 SharedAccess (b95f6501a2f8b2e78c697fec401970ce) C:\Windows\System32\ipnathlp.dll
18:21:32.0553 3288 SharedAccess - ok
18:21:32.0617 3288 ShellHWDetection (aaf932b4011d14052955d4b212a4da8d) C:\Windows\System32\shsvcs.dll
18:21:32.0629 3288 ShellHWDetection - ok
18:21:32.0645 3288 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
18:21:32.0667 3288 SiSRaid2 - ok
18:21:32.0687 3288 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
18:21:32.0698 3288 SiSRaid4 - ok
18:21:32.0825 3288 SkypeUpdate (6128e98eaaed364ed1a32708d2fd22cb) C:\Program Files (x86)\Skype\Updater\Updater.exe
18:21:32.0828 3288 SkypeUpdate - ok
18:21:32.0858 3288 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
18:21:32.0860 3288 Smb - ok
18:21:32.0892 3288 SNMPTRAP (6313f223e817cc09aa41811daa7f541d) C:\Windows\System32\snmptrap.exe
18:21:32.0894 3288 SNMPTRAP - ok
18:21:32.0919 3288 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
18:21:32.0934 3288 spldr - ok
18:21:33.0009 3288 Spooler (b96c17b5dc1424d56eea3a99e97428cd) C:\Windows\System32\spoolsv.exe
18:21:33.0025 3288 Spooler - ok
18:21:33.0300 3288 sppsvc (e17e0188bb90fae42d83e98707efa59c) C:\Windows\system32\sppsvc.exe
18:21:33.0352 3288 sppsvc - ok
18:21:33.0479 3288 sppuinotify (93d7d61317f3d4bc4f4e9f8a96a7de45) C:\Windows\system32\sppuinotify.dll
18:21:33.0494 3288 sppuinotify - ok
18:21:33.0509 3288 sptd - ok
18:21:33.0638 3288 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
18:21:33.0704 3288 srv - ok
18:21:33.0768 3288 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
18:21:33.0778 3288 srv2 - ok
18:21:33.0804 3288 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
18:21:33.0808 3288 srvnet - ok
18:21:33.0850 3288 SSDPSRV (51b52fbd583cde8aa9ba62b8b4298f33) C:\Windows\System32\ssdpsrv.dll
18:21:33.0857 3288 SSDPSRV - ok
18:21:33.0880 3288 SstpSvc (ab7aebf58dad8daab7a6c45e6a8885cb) C:\Windows\system32\sstpsvc.dll
18:21:33.0887 3288 SstpSvc - ok
18:21:34.0059 3288 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
18:21:34.0070 3288 StarWindServiceAE - ok
18:21:34.0122 3288 Steam Client Service - ok
18:21:34.0178 3288 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
18:21:34.0182 3288 stexstor - ok
18:21:34.0275 3288 stisvc (8dd52e8e6128f4b2da92ce27402871c1) C:\Windows\System32\wiaservc.dll
18:21:34.0313 3288 stisvc - ok
18:21:34.0372 3288 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
18:21:34.0408 3288 swenum - ok
18:21:34.0585 3288 SwitchBoard (f577910a133a592234ebaad3f3afa258) C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
18:21:34.0613 3288 SwitchBoard - ok
18:21:34.0678 3288 swprv (e08e46fdd841b7184194011ca1955a0b) C:\Windows\System32\swprv.dll
18:21:34.0693 3288 swprv - ok
18:21:34.0878 3288 SysMain (bf9ccc0bf39b418c8d0ae8b05cf95b7d) C:\Windows\system32\sysmain.dll
18:21:34.0913 3288 SysMain - ok
18:21:35.0035 3288 TabletInputService (e3c61fd7b7c2557e1f1b0b4cec713585) C:\Windows\System32\TabSvc.dll
18:21:35.0048 3288 TabletInputService - ok
18:21:35.0122 3288 TapiSrv (40f0849f65d13ee87b9a9ae3c1dd6823) C:\Windows\System32\tapisrv.dll
18:21:35.0135 3288 TapiSrv - ok
18:21:35.0172 3288 TBS (1be03ac720f4d302ea01d40f588162f6) C:\Windows\System32\tbssvc.dll
18:21:35.0187 3288 TBS - ok
18:21:35.0377 3288 Tcpip (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\drivers\tcpip.sys
18:21:35.0443 3288 Tcpip - ok
18:21:35.0737 3288 TCPIP6 (acb82bda8f46c84f465c1afa517dc4b9) C:\Windows\system32\DRIVERS\tcpip.sys
18:21:35.0748 3288 TCPIP6 - ok
18:21:35.0884 3288 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
18:21:35.0889 3288 tcpipreg - ok
18:21:35.0934 3288 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
18:21:35.0969 3288 TDPIPE - ok
18:21:36.0017 3288 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
18:21:36.0027 3288 TDTCP - ok
18:21:36.0087 3288 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
18:21:36.0124 3288 tdx - ok
18:21:36.0174 3288 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
18:21:36.0192 3288 TermDD - ok
18:21:36.0243 3288 TermService (2e648163254233755035b46dd7b89123) C:\Windows\System32\termsrv.dll
18:21:36.0272 3288 TermService - ok
18:21:36.0305 3288 Themes (f0344071948d1a1fa732231785a0664c) C:\Windows\system32\themeservice.dll
18:21:36.0308 3288 Themes - ok
18:21:36.0340 3288 THREADORDER (e40e80d0304a73e8d269f7141d77250b) C:\Windows\system32\mmcss.dll
18:21:36.0342 3288 THREADORDER - ok
18:21:36.0362 3288 TrkWks (7e7afd841694f6ac397e99d75cead49d) C:\Windows\System32\trkwks.dll
18:21:36.0365 3288 TrkWks - ok
18:21:36.0448 3288 TrustedInstaller (773212b2aaa24c1e31f10246b15b276c) C:\Windows\servicing\TrustedInstaller.exe
18:21:36.0452 3288 TrustedInstaller - ok
18:21:36.0520 3288 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:21:36.0524 3288 tssecsrv - ok
18:21:36.0587 3288 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
18:21:36.0643 3288 TsUsbFlt - ok
18:21:36.0695 3288 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
18:21:36.0745 3288 tunnel - ok
18:21:36.0779 3288 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
18:21:36.0797 3288 uagp35 - ok
18:21:36.0863 3288 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
18:21:36.0875 3288 udfs - ok
18:21:36.0919 3288 UI0Detect (3cbdec8d06b9968aba702eba076364a1) C:\Windows\system32\UI0Detect.exe
18:21:36.0923 3288 UI0Detect - ok
18:21:36.0968 3288 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
18:21:36.0985 3288 uliagpkx - ok
18:21:37.0038 3288 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
18:21:37.0054 3288 umbus - ok
18:21:37.0074 3288 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
18:21:37.0090 3288 UmPass - ok
18:21:37.0124 3288 upnphost (d47ec6a8e81633dd18d2436b19baf6de) C:\Windows\System32\upnphost.dll
18:21:37.0130 3288 upnphost - ok
18:21:37.0169 3288 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
18:21:37.0185 3288 USBAAPL64 - ok
18:21:37.0236 3288 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
18:21:37.0286 3288 usbaudio - ok
18:21:37.0315 3288 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
18:21:37.0335 3288 usbccgp - ok
18:21:37.0388 3288 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
18:21:37.0403 3288 usbcir - ok
18:21:37.0430 3288 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
18:21:37.0469 3288 usbehci - ok
18:21:37.0510 3288 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
18:21:37.0555 3288 usbhub - ok
18:21:37.0616 3288 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
18:21:37.0650 3288 usbohci - ok
18:21:37.0669 3288 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
18:21:37.0685 3288 usbprint - ok
18:21:37.0720 3288 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:21:37.0754 3288 USBSTOR - ok
18:21:37.0770 3288 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
18:21:37.0771 3288 usbuhci - ok
18:21:37.0830 3288 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
18:21:37.0880 3288 usbvideo - ok
18:21:37.0906 3288 UxSms (edbb23cbcf2cdf727d64ff9b51a6070e) C:\Windows\System32\uxsms.dll
18:21:37.0909 3288 UxSms - ok
18:21:37.0963 3288 VaultSvc (c118a82cd78818c29ab228366ebf81c3) C:\Windows\system32\lsass.exe
18:21:37.0966 3288 VaultSvc - ok
18:21:38.0038 3288 VCSVADHWSer (3a4b01c2bdb07dfef29b0b369487503a) C:\Windows\system32\DRIVERS\vcsvad.sys
18:21:38.0084 3288 VCSVADHWSer - ok
18:21:38.0103 3288 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
18:21:38.0123 3288 vdrvroot - ok
18:21:38.0198 3288 vds (8d6b481601d01a456e75c3210f1830be) C:\Windows\System32\vds.exe
18:21:38.0229 3288 vds - ok
18:21:38.0265 3288 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
18:21:38.0268 3288 vga - ok
18:21:38.0285 3288 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
18:21:38.0303 3288 VgaSave - ok
18:21:38.0329 3288 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
18:21:38.0354 3288 vhdmp - ok
18:21:38.0403 3288 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
18:21:38.0414 3288 viaide - ok
18:21:38.0443 3288 VKbms (3b59bb6d10cf969dbe4db93d9ead7fb4) C:\Windows\system32\DRIVERS\VKbms.sys
18:21:38.0479 3288 VKbms - ok
18:21:38.0495 3288 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
18:21:38.0496 3288 volmgr - ok
18:21:38.0569 3288 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
18:21:38.0578 3288 volmgrx - ok
18:21:38.0615 3288 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
18:21:38.0620 3288 volsnap - ok
18:21:38.0654 3288 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
18:21:38.0699 3288 vsmraid - ok
18:21:38.0846 3288 VSS (b60ba0bc31b0cb414593e169f6f21cc2) C:\Windows\system32\vssvc.exe
18:21:38.0891 3288 VSS - ok
18:21:39.0008 3288 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
18:21:39.0050 3288 vwifibus - ok
18:21:39.0103 3288 W32Time (1c9d80cc3849b3788048078c26486e1a) C:\Windows\system32\w32time.dll
18:21:39.0115 3288 W32Time - ok
18:21:39.0136 3288 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
18:21:39.0139 3288 WacomPen - ok
18:21:39.0194 3288 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:21:39.0239 3288 WANARP - ok
18:21:39.0244 3288 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
18:21:39.0245 3288 Wanarpv6 - ok
18:21:39.0379 3288 WatAdminSvc (3cec96de223e49eaae3651fcf8faea6c) C:\Windows\system32\Wat\WatAdminSvc.exe
18:21:39.0413 3288 WatAdminSvc - ok
18:21:39.0531 3288 wbengine (78f4e7f5c56cb9716238eb57da4b6a75) C:\Windows\system32\wbengine.exe
18:21:39.0585 3288 wbengine - ok
18:21:39.0699 3288 WbioSrvc (3aa101e8edab2db4131333f4325c76a3) C:\Windows\System32\wbiosrvc.dll
18:21:39.0716 3288 WbioSrvc - ok
18:21:39.0798 3288 wcncsvc (7368a2afd46e5a4481d1de9d14848edd) C:\Windows\System32\wcncsvc.dll
18:21:39.0819 3288 wcncsvc - ok
18:21:39.0856 3288 WcsPlugInService (20f7441334b18cee52027661df4a6129) C:\Windows\System32\WcsPlugInService.dll
18:21:39.0864 3288 WcsPlugInService - ok
18:21:39.0919 3288 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
18:21:39.0924 3288 Wd - ok
18:21:39.0990 3288 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
18:21:40.0018 3288 Wdf01000 - ok
18:21:40.0048 3288 WdiServiceHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:21:40.0054 3288 WdiServiceHost - ok
18:21:40.0068 3288 WdiSystemHost (bf1fc3f79b863c914687a737c2f3d681) C:\Windows\system32\wdi.dll
18:21:40.0074 3288 WdiSystemHost - ok
18:21:40.0181 3288 WebClient (3db6d04e1c64272f8b14eb8bc4616280) C:\Windows\System32\webclnt.dll
18:21:40.0188 3288 WebClient - ok
18:21:40.0224 3288 Wecsvc (c749025a679c5103e575e3b48e092c43) C:\Windows\system32\wecsvc.dll
18:21:40.0244 3288 Wecsvc - ok
18:21:40.0274 3288 wercplsupport (7e591867422dc788b9e5bd337a669a08) C:\Windows\System32\wercplsupport.dll
18:21:40.0281 3288 wercplsupport - ok
18:21:40.0309 3288 WerSvc (6d137963730144698cbd10f202e9f251) C:\Windows\System32\WerSvc.dll
18:21:40.0314 3288 WerSvc - ok
18:21:40.0368 3288 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
18:21:40.0406 3288 WfpLwf - ok
18:21:40.0419 3288 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
18:21:40.0436 3288 WIMMount - ok
18:21:40.0458 3288 WinDefend - ok
18:21:40.0474 3288 WinHttpAutoProxySvc - ok
18:21:40.0564 3288 Winmgmt (19b07e7e8915d701225da41cb3877306) C:\Windows\system32\wbem\WMIsvc.dll
18:21:40.0571 3288 Winmgmt - ok
18:21:40.0758 3288 WinRM (bcb1310604aa415c4508708975b3931e) C:\Windows\system32\WsmSvc.dll
18:21:40.0813 3288 WinRM - ok
18:21:40.0968 3288 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
18:21:40.0996 3288 WinUsb - ok
18:21:41.0086 3288 Wlansvc (4fada86e62f18a1b2f42ba18ae24e6aa) C:\Windows\System32\wlansvc.dll
18:21:41.0128 3288 Wlansvc - ok
18:21:41.0415 3288 wlidsvc (98f138897ef4246381d197cb81846d62) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
18:21:41.0449 3288 wlidsvc - ok
18:21:41.0586 3288 WmBEnum (14dc5897bc6c4e03c023ad80abb7f539) C:\Windows\system32\drivers\WmBEnum.sys
18:21:41.0591 3288 WmBEnum - ok
18:21:41.0654 3288 WmFilter (2de0a0cea49972c82c7e9d36bd4c1247) C:\Windows\system32\drivers\WmFilter.sys
18:21:41.0659 3288 WmFilter - ok
18:21:41.0721 3288 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
18:21:41.0758 3288 WmiAcpi - ok
18:21:41.0803 3288 wmiApSrv (38b84c94c5a8af291adfea478ae54f93) C:\Windows\system32\wbem\WmiApSrv.exe
18:21:41.0813 3288 wmiApSrv - ok
18:21:41.0849 3288 WMPNetworkSvc - ok
18:21:41.0908 3288 WmVirHid (53c12ae1183f3f7787f1f1835001ccc0) C:\Windows\system32\drivers\WmVirHid.sys
18:21:41.0913 3288 WmVirHid - ok
18:21:41.0940 3288 WmXlCore (c807e470cca24f5e479da4872a7d2121) C:\Windows\system32\drivers\WmXlCore.sys
18:21:41.0986 3288 WmXlCore - ok
18:21:42.0008 3288 WPCSvc (96c6e7100d724c69fcf9e7bf590d1dca) C:\Windows\System32\wpcsvc.dll
18:21:42.0010 3288 WPCSvc - ok
18:21:42.0063 3288 WPDBusEnum (93221146d4ebbf314c29b23cd6cc391d) C:\Windows\system32\wpdbusenum.dll
18:21:42.0070 3288 WPDBusEnum - ok
18:21:42.0109 3288 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
18:21:42.0125 3288 ws2ifsl - ok
18:21:42.0146 3288 wscsvc (e8b1fe6669397d1772d8196df0e57a9e) C:\Windows\system32\wscsvc.dll
18:21:42.0149 3288 wscsvc - ok
18:21:42.0155 3288 WSearch - ok
18:21:42.0356 3288 wuauserv (9df12edbc698b0bc353b3ef84861e430) C:\Windows\system32\wuaueng.dll
18:21:42.0396 3288 wuauserv - ok
18:21:42.0531 3288 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
18:21:42.0571 3288 WudfPf - ok
18:21:42.0599 3288 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:21:42.0624 3288 WUDFRd - ok
18:21:42.0681 3288 wudfsvc (7a95c95b6c4cf292d689106bcae49543) C:\Windows\System32\WUDFSvc.dll
18:21:42.0689 3288 wudfsvc - ok
18:21:42.0744 3288 WwanSvc (9a3452b3c2a46c073166c5cf49fad1ae) C:\Windows\System32\wwansvc.dll
18:21:42.0761 3288 WwanSvc - ok
18:21:42.0856 3288 X6va005 - ok
18:21:42.0955 3288 xusb21 (2ee48cfce7ca8e0db4c44c7476c0943b) C:\Windows\system32\DRIVERS\xusb21.sys
18:21:42.0994 3288 xusb21 - ok
18:21:43.0013 3288 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
18:21:43.0190 3288 \Device\Harddisk1\DR1 - ok
18:21:43.0203 3288 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
18:21:43.0478 3288 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
18:21:43.0478 3288 \Device\Harddisk0\DR0 - detected TDSS File System (1)
18:21:43.0518 3288 Boot (0x1200) (17b391d7f75f638358a4964012f83dbe) \Device\Harddisk1\DR1\Partition0
18:21:43.0520 3288 \Device\Harddisk1\DR1\Partition0 - ok
18:21:43.0528 3288 Boot (0x1200) (2d26fef5486e6e3bce5913abc4ab3a0f) \Device\Harddisk1\DR1\Partition1
18:21:43.0530 3288 \Device\Harddisk1\DR1\Partition1 - ok
18:21:43.0539 3288 Boot (0x1200) (60242c9306ca5f0add88e7969c707935) \Device\Harddisk0\DR0\Partition0
18:21:43.0541 3288 \Device\Harddisk0\DR0\Partition0 - ok
18:21:43.0544 3288 ============================================================
18:21:43.0544 3288 Scan finished
18:21:43.0544 3288 ============================================================
18:21:43.0561 5700 Detected object count: 2
18:21:43.0561 5700 Actual detected object count: 2




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users